General
-
Target
3f24a0243264894973daaddd665b311850024f99a47f935ca6ecba0d95f5f283.exe
-
Size
32KB
-
MD5
7699a1f8463d4e48b20d720f8f794dbc
-
SHA1
7cee32f7a24224f3ee107b632447589e41c22dc2
-
SHA256
3f24a0243264894973daaddd665b311850024f99a47f935ca6ecba0d95f5f283
-
SHA512
00c520107dfa5a8510e0c7c16f94bec02131fc3a3270d8af40769534781a2f75362f66b5f7897d9efbe770dcb3916f31e513ee0a24e891c7683a1d5d9306c713
-
SSDEEP
384:z0bUe5XB4e0XppOjfrw0Q0mS03AWTxtTUFQqzFTObb9:gT9BuGj855dlb9
Score
10/10
Malware Config
Extracted
Family
njrat
Version
0.7NC
Botnet
NYAN CAT
C2
patria.duckdns.org:1994
Mutex
8afb83f6665f4435b23
Attributes
-
reg_key
8afb83f6665f4435b23
-
splitter
@!#&^%$
Signatures
-
Njrat family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
3f24a0243264894973daaddd665b311850024f99a47f935ca6ecba0d95f5f283.exe
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections